DOJ Cyber-Fraud Initiative Highlights Potential Civil Liability for Failing to Meet Federal Cybersecurity Requirements
The Department of Justice (DOJ) has created a new Civil Cyber-Fraud Initiative to use the power of the False Claims Act (FCA) to initiate suits against federal
U.S. Congress Introduces Bill that Would Require Mandatory 24 Hour Cyber Breach Notification for Government Agencies, Contractors, and Operators of Critical Infrastructure
This week, U.S. Senator Mark Warner (D-VA), chair of the Senate Intelligence Committee, and a broad group of bipartisan co-sponsors, introduced legislation that
Executive Order on Cybersecurity Expands Mandatory Breach Notification and Supply Chain Security Requirements for Government Contractors
On May 12, 2021, the Biden administration issued an ambitious Executive Order on Improving the Nation’s Cybersecurity (EO) declaring the prevention, detection,
Data Rights: Current Developments & Pending DOD Changes
Jay DeVecchio recently published a Briefing Paper for Thomson Reuters covering recent developments in the Department of Defense’s (DOD) Defense Federal Acquisit
U.S. Government Responds to SolarWinds Hack, Seeks to Establish New Norms for Cyber Espionage
After much anticipation and hints, the U.S. Government announced a series of measures to respond to recent Russian actions against the United States, including
Top Cybersecurity Considerations for Government Contractors in 2021
Although it was already apparent, recent events have made it even clearer that cybersecurity is an essential concern for government contractors. The coming yea
Deadline Fast Approaching for DoD Contractors and Subcontractors to Report Cyber Compliance
As we previously reported, the Department of Defense (DoD) has issued an interim rule that requires all contractors and subcontractors that store, process, gene
Breaking DOD’s Code: How to Figure Out and Resist What DOD Really, Truly Wants to Do to Your Data Rights
Your rights in technical data and software are at greater risk today than at any time during the last 25 years. The Department of Defense (“DOD”) is proposing
U.S. District Court for the District of Columbia Finds That Alleged Cybersecurity Vulnerability Is Not Material Under False Claims Act
In a decision sure to bring some comfort to contractors providing information technology equipment and services to the federal government, a U.S. district court
Department of Defense Issues CMMC Interim Rule, Setting up a Two-Part Process for Review of Contractor IT Systems
On September 29, 2020, the Department of Defense (DoD) issued a long-anticipated interim rule implementing its Cybersecurity Maturity Model Certification (CMMC)